CVE-2003-1307

Apache mod_php - Local Privilege Escalation

Title source: llm

Description

The mod_php module for the Apache HTTP Server allows local users with write access to PHP scripts to send signals to the server's process group and use the server's file descriptors, as demonstrated by sending a STOP signal, then intercepting incoming connections on the server's TCP port. NOTE: the PHP developer has disputed this vulnerability, saying "The opened file descriptors are opened by Apache. It is the job of Apache to protect them ... Not a bug in PHP.

Exploits (2)

exploitdb WORKING POC VERIFIED

by frauk\x41ser · clocallinux

https://www.exploit-db.com/exploits/23482

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by Steve Grubb · clocallinux

https://www.exploit-db.com/exploits/23481

View Code ZIP pw:eip

References (6)

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/449234/100/0/threaded

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/449298/100/0/threaded

[Exploit] http://bugs.php.net/38915

[Exploit, Vendor Advisory] http://www.securityfocus.com/archive/1/348368

[Exploit] http://hackerdom.ru/~dimmo/phpexpl.c

[Exploit] http://www.securityfocus.com/bid/9302

Scores

EPSS 0.0124

EPSS Percentile 79.3%

Details

Status published

Products (19)

apache/http_server 2.0

apache/http_server 2.0.9

apache/http_server 2.0.28 (3 CPE variants)

apache/http_server 2.0.32 (2 CPE variants)

apache/http_server 2.0.34 beta

apache/http_server 2.0.35

apache/http_server 2.0.36

apache/http_server 2.0.37

apache/http_server 2.0.38

apache/http_server 2.0.39

... and 9 more

Published Dec 31, 2003

Tracked Since Feb 18, 2026